Online NSE6_FAC-6.1 Practice TestMore Fortinet Products >

Free Fortinet NSE6_FAC-6.1 Exam Dumps Questions

Fortinet NSE6_FAC-6.1: Fortinet NSE 6 - FortiAuthenticator 6.1

- Get instant access to NSE6_FAC-6.1 practice exam questions

- Get ready to pass the Fortinet NSE 6 - FortiAuthenticator 6.1 exam right now using our Fortinet NSE6_FAC-6.1 exam package, which includes Fortinet NSE6_FAC-6.1 practice test plus an Fortinet NSE6_FAC-6.1 Exam Simulator.

- The best online NSE6_FAC-6.1 exam study material and preparation tool is here.

4.5

(5910 ratings)

Question 1

Which option correctly describes an SP-initiated SSO SAML packet flow for a host without a SAML assertion?

A. Service provider contacts idendity provider, idendity provider validates principal for service provider, service provider establishes communication with principal

B. Principal contacts idendity provider and is redirected to serviceprovider, principal establishes connection with service provider, service provider validates authentication with identify provider

C. Principal contacts service provider, service provider redirects principal to idendity provider, after succesfull authentication identify provider redirects principal to service provider

D. Principal contacts idendity provider and authenticates, identity provider relays principal to service provider after valid authentication

Correct Answer:C

Question 2

Which two are supported captive or guest portal authentication methods? (Choose two)

A. Linkedln

B. Apple ID

C. Instagram

D. Email

Correct Answer:AD

Question 3

Which method is the most secure way of delivering FortiToken data once the token has been seeded?

A. Online activation of the tokens through the FortiGuard network

B. Shipment of the seed files on a CD using a tamper-evident envelope

C. Using the in-house token provisioning tool

D. Automatic token generation using FortiAuthenticator

Correct Answer:B

Question 4

Which two statements about the EAP-TTLS authentication method are true? (Choose two)

A. Uses mutualauthentication

B. Uses digital certificates only on the server side

C. Requires an EAP server certificate

D. Support a port access control (wired) solution only

Correct Answer:BC

Question 5

Which FSSO discovery method transparently detects logged off users without having to rely on external features such as WMI polling?

A. Windows AD polling

B. FortiClient SSO Mobility Agent

C. Radius Accounting

D. DC Polling

Correct Answer:B

Question 6

Which two capabilities does FortiAuthenticator offer when acting as a self-signed or local CA? (Choose two)

A. Validating other CA CRLs using OSCP

B. Importing other CA certificates and CRLs

C. Merging local and remote CRLs using SCEP

D. Creating, signing, and revoking of X.509 certificates

Correct Answer:BD

START NSE6_FAC-6.1 EXAM